Back to search
CVE-2020-35597
Published: Jun 16, 2022
Modified: Aug 4, 2024
PUBLISHED
Description
Victor CMS 1.0 is vulnerable to SQL injection via c_id parameter of admin_edit_comment.php, p_id parameter of admin_edit_post.php, u_id parameter of admin_edit_user.php, and edit parameter of admin_update_categories.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://github.com/VictorAlagwu/CMSsite/issues/16
x_refsource_MISC
https://cxsecurity.com/issue/WLB-2020120118
x_refsource_MISC
https://www.exploit-db.com/exploits/49282
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now